FFmpeg Denial of Service Vulnerability (CNVD-2017-37755)

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team.VC-2 Video Compression encoder is one of the video compression encoders. A security vulnerability exists in the VC-2 Video Compression encoder in FFmpeg version 3.4. A remote attacker can...

[SECURITY] Fedora 25 Update: lame-3.100-1.fc25

LAME is an open source MP3 encoder whose quality and speed matches commercial encoders. LAME handles MPEG1,2 and 2.5 layer III encoding with both constant and variable bitrates...

[SECURITY] Fedora 27 Update: lame-3.100-1.fc27

LAME is an open source MP3 encoder whose quality and speed matches commercial encoders. LAME handles MPEG1,2 and 2.5 layer III encoding with both constant and variable bitrates...

[SECURITY] Fedora 26 Update: lame-3.100-1.fc26

LAME is an open source MP3 encoder whose quality and speed matches commercial encoders. LAME handles MPEG1,2 and 2.5 layer III encoding with both constant and variable bitrates...

TP-Link WR940N - Authenticated Remote Code Exploit Exploit

Exploit for hardware platform in category web applications import urllib2 import base64 import hashlib from optparse import import sys import urllibbanner = "\n" "WR940N Authenticated Remote Code Exploit\n" "This exploit will open a bind shell on the remote target\n" "The port is 31337, you can...

TP-Link WR940N - (Authenticated) Remote Code

TP-Link WR940N - Authenticated Remote Code import urllib2 import base64 import hashlib from optparse import import sys import urllibbanner = "\n" "WR940N Authenticated Remote Code Exploit\n" "This exploit will open a bind shell on the remote target\n" "The port is 31337, you can change that in th...

LAME Null Pointer Reference Denial of Service Vulnerability

LAME is an MP3 encoder. A security vulnerability in LAME libmp3lame/mpglibinterface.c hipdecodeinit allows remote attackers to exploit the vulnerability by submitting a special mpg file, tricking the user into parsing it, and performing a denial of service attack...

LAME k_34_4 Heap Overflow Denial of Service Vulnerability

LAME is an MP3 encoder. A security vulnerability in LAME vbrquantize.c k344 allows remote attackers to exploit the vulnerability by submitting a special file and tricking the user into parsing it for a denial of service attack...

UBUNTU-CVE-2017-15019

LAME 3.99.5 has a NULL Pointer Dereference in the hipdecodeinit function within libmp3lame/mpglibinterface.c via a malformed mpg file, because of an incorrect calloc call...

Motorola Netopia Netoctopus SDCS Stack Buffer Overflow

require 'msf/core' class MetasploitModule 'Motorola Netopia Netoctopus SDCS Stack Buffer Overflow', 'Description' = %q This module exploits a vulnerability within the code responsible for parsing client requests. When reading in a request from the network, a 32-bit integer is read in that specifi...

LAME 'id3v2AddAudioDuration' function null pointer reference denial of service vulnerability

LAME is LAME team developed a set of open source MP3 audio compression software . A security vulnerability exists in the 'id3v2AddAudioDuration' function in the libmp3lame/id3tag.c file in LAME version 3.99.5. An attacker can exploit this vulnerability to cause a denial of service null pointer...

[SECURITY] [DSA 3957-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3957-1 [email protected] https://www.debian.org/security/ Luciano Bello August 28, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3957-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3957-1 [email protected] https://www.debian.org/security/ Luciano Bello August 28, 2017 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-3957-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2017-13666

An integer underflow vulnerability exists in pixel-a.asm, the x86 assembly code for planeClipAndMax in MulticoreWare x265 through 2.5, as used in libbpg and other products. A small height value can cause an integer underflow, which leads to a crash. This is a different vulnerability than...

Android Media framework mpeg4 encoder elevation of privilege vulnerability

Android is a Linux-based open source operating system jointly developed by Google and the Open Handset Alliance OHA.Media framework mpeg4 encoder is one of the mpeg4 encoders for multimedia development. An elevation of privilege vulnerability exists in the Media framework mpeg4 encoder in Android...

Privilege escalation

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

A elevation of privilege vulnerability in the Android media framework mpeg4 encoder. Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-36075363...

CVE-2017-0731

The CVE-2017-0731 entry corresponds to an elevation of privilege in the Android media framework (mpeg4 encoder). According to CNVD-2017-23424, the issue exists in Android’s Media framework mpeg4 encoder and could allow an attacker to execute arbitrary code with elevated privileges. The initial de...